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'METHOD AND SYSTEM FOR DETECTING OMISSION 
IN SOFTWARE-PROPERTY MANAGEMENT USING NETWORK 

BACKGROUND OF THE INVENTION 
5 1. Field of the Invention 

The present invention relates to a method of detecting 
omission in software-property management using a network, a system 
for the same, a server for the management, and a program for the 
management, which prevent a computer to be managed from being 
10 omitted in software-property management which manages, for each 
computer, basic information thereof and installed software, and 
fix-patch application status. 
2. Description of the Related Art 

Computers have recently been widely used in companies or 
15 organizations or the like for their businesses. Computers need 
to be used with software suitable for their intended purposes so 
that the companies or the like have installed and used various 
kinds of software on their computers . 

Thus, the companies or the like need to take measures to 
20 properly manage the purchased software license to prevent the 
software from being illegally copied and used in their 
organization . 

Most of software can, however, be easily installed from one 
medium to plural computers so that problems have arisen in that 
25 a huge amount of work is needed to know exactly whether pieces 
of software more than the licensed number are installed, and in 
that the survey results become much harder to maintain as the size 
of the organization increases. 

In addition, many of the computers have recently been 
3 0 connected to networks to exchange information through them. 

In such a situation, to prevent computer virus infection 
through E-mail or WEB access or the like, it is necessary to manage 



- 2 - 



OS (Operating System) or application software installed on a 
computer connected to a network, not to have security concerns, 
such as by applying fix patches provided by software developers 
However, as with the software license management problem, 
5 a problem has arisen in that a huge amount of work is needed to 
know whether the OS or application software is properly updated. 

Methods have been proposed to the above-described problems , 
including a method allowing automatic-centralized management of 
software-property information. This method can be done by 

10 running, on each computer connected to a network, client software 
for software-property management which collects information such 
as computer basic information (such as a host name, a network 
address) or list information on installed software, and by sending 
the collected information to a server for software-property 

15 management (see, for example, JP-A-2001-222424 , JP-A-2001-290937 , 
and JP-A-2002-279165) . Other methods have also been proposed 
such as managing software-fix-patch application status using a 
dedicated server, and automatically downloading and applying a 
fix patch to a computer with no patches used yet (see, for example, 

20 JP-A-2000-250743 and JP-A-2002-55839) . 

There have been problems, however, with such conventional 
methods as described above, that is, it is supposed in the 
conventional methods that client software for software-property 
management or client software for downloading and applying a fix 

25 patch is installed and run on each computer, or that OS or 

application software has the eguivalent function as such client 
software, so that a computer on which client software is not 
running may be omitted in software-property management 
information, and illegal use of software may be overlooked or a 

30 computer having security concerns may be overlooked. 



SUMMARY OF THE INVENT I ON 
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The p'resent invention was accomplished in light of the 
abovementioned circumstances and has an object to provide an 
omission-in-software-property-management detection method , 
system, server and program using a network for preventing a 
5 computer to be managed from being omitted in software-property 
management which manages, for each computer, basic information 
thereof, installed software, and fix-patch application status, 
for the purpose of allowing detection of a computer with unknown 
OS or application-patch application status and with a high 

10 possibility of having security concerns. 

To achieve the abovementioned object, according to a first 
aspect of the present invention, there is provided a detection 
method of omission-in-software-property-management using a 
network for detecting a computer omitted from a software-property 

15 management which manages, for each computer, basic information 
thereof and installed software, and fix-patch application status, 
wherein a network-connected-computer list which holds, for all 
computers connected to a given network, information for 
identifying each computer, and a software-property management 

20 list which holds, for all computers to be managed by the 

software-property management, information for identifying each 
computer, are used as a basis on which a computer is extracted 
that is present in the network-connected-computer list and absent 
in the software-property management list, and there is created 

2 5 a list of computer omitted in the software-property management. 
Such a method of an 
omission-in-software-property-management detection method using 
a network can create, in addition to a software-property 
management list, a list that includes every computer connected 

30 to a network, and use information such as a network address which 
can uniquely identify a computer, thereby finding out a computer 
omitted from software-property management. 
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Thus/ a computer omitted from the software-property 
management can be easily determined. 

Means for creating a list including every computer connected 
to a network can also be configured independently of the 
5 conventional software-property management system to detect a 
computer omitted from the software-property management. 

And the conventional software-property management system 
can apply to this computer omitted from the software-property 
management . 

10 Thus, omission can be prevented in the software-property 

management information without significant modification of the 
conventional software-property management system. 

Consequently, in software-property management, which 
manages OS, software version, and patch-application status or the 

15 like at the same time, a list that includes every computer 
connected to a network can be used to prevent omission in 
management . 

Thus, a computer with unknown OS, software version, or 
patch-application status or the like can be detected, and a 
20 computer with the non-latest patch-application status which may 
be a security hole can be prevented from being left connected to 
a network. 

Furthermore, the network-connected-computer list and the 
software-property management list can be regularly updated and 
2 5 compared in an appropriate period, such as every day, to check 
that a computer newly connected to a network is under 
software-property management. 

Thus, a computer out of the software-property management 
or an illegal computer can be detected early as an unmanaged 
30 computer, when it is connected to a network. 

Note that the basic information means information such as 
a network address or computer name. Further, the basic 
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informatiori may only be a single piece of information for 
identifying each computer. 

And the given network means a network such as an in-house 
LAN or VPN or the like, which is to be managed by companies, public 
5 offices, schools, or other organizations or individuals or the 
like. 

According to a detection method of a second aspect of the 
present invention, in the detection method of the first aspect, 
the network-connected-computer list and the software-property 

10 management list are used as a basis on which a computer is extracted 
that is present in the software-property management list and 
absent in the network-connected-computer list, and there is 
created of a list of computer in unused state. 
Such a method of an 

15 omission-in-software-property-management detection method using 
a network can create an unused-computer list to determine a 
computer that was previously used but is not used at present. 

Further, creation of both the 
omission-in-software-property-management detection list and the 

2 0 unused-computer list can detect a computer omitted in 

software-property management and can obtain a list of software 
that is unused at present, thereby helping manage the software 
property more strictly. 

According to a third aspect of the present invention, there 

25 is provided a detection system for 

omission-in-software-property-management using a network for 
detecting a computer omitted from a software-property management 
which manages, for each computer, basic information thereof and 
installed software , and fix-patch application status , comprising: 

30 a network-connection management server including a 

network-connected-computer list which holds, for all computers 
connected to a given network, information for identifying each 
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computer; cl software-property management server including a 
software-property management list which holds, for all computers 
to be managed by the software-property management, information 
for identifying each computer; and an 
5 omission-in-software-property-management detection server which 
uses the network-connected-computer list and the 
software-property management list as a basis to extract a computer 
that is present in the network-connected-computer list and absent 
in the software-property management list, and to create a list 

10 of computer omitted in the software-property management. 
In such a configuration of an 
omission-in-software-property-management detection system using 
a network, a software-property management list managed by a 
software-property management server and a 

15 network-connected-computer list created by the 

network-connection management server can be used as a basis on 
which information such as a network address which can uniquely 
identify a computer can be used to easily find out a computer that 
is connected to a network, but is not under the software property 

2 0 management . 

Consequently, a computer with unknown OS, software version, 
or patch-application status or the like can be detected, and a 
computer with the non-latest patch-application status which may 
be a security hole can be prevented from being left connected to 
25 a network. 

Further, such a configuration of an 
omission-in-software-property-management detection system using 
a network can prevent omission of the managed object without 
significant modification of the conventional software-property 

3 0 management system. 

In addition, a computer out of the software-property 
management or an illegal computer can be detected early as an 
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unmanaged Computer, when it is connected to a network. 

According to a forth aspect of the present invention, in 
the detection system of the third aspect, the 

omission-in-software-property-management detection server uses 
5 the network-connected-computer list and the software-property 
management list as a basis to extract a computer that is present 
in the software-property management list and absent in the 
network-connected-computer list, and to create a list of computer 
in unused state. 
10 Such a configuration of an 

omission-in-software-property-management detection system using 
a network can determine a computer that was previously used but 
is not used at present. 

Thus, a computer omitted in software-property management 
15 can be detected, as well as a list of software that is unused at 
present can be obtained. 

According to a fifth aspect of the present invention, there 
is provided a detection server for 

omission-in-software-property-management using a network for 
20 detecting a computer omitted from a software-property management 
which manages, for each computer, basic information thereof and 
installed software, and fix-patch application status, wherein a 
network-connected-computer list which holds, for all computers 
connected to a given network, information for identifying each 
2 5 computer, is received from a network-connection-management server 
including the network-connected-computer list, a 
software-property management list which holds, for all computers 
to be managed by the software-property management, information 
for identifying each computer, is received from a 
30 software-property management server including the 
software-property management list, and the 

network-connected-computer list and the software-property 
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management list are used as a basis on which a computer is extracted 
that is present in the network-connected-computer list and absent 
in the software-property management list, and there is created 
a list of computer omitted in software-property management. 
5 Such a configuration of an 

omission-in-software-property-management detection server using 
a network can use a network-connected-computer list from a 
network-connection management server and a software-property 
management list from a software-property management server as a 
10 basis to easily detect a computer omitted in the software-property 
management . 

In addition, even if the software-property management 
server holds the conventional software-property management system, 
little modification needs to be made to this software-property 

15 management server. 

Further, a computer that may be a security hole can be 
prevented from being left connected to a network, and a computer 
out of the software-property management or an illegal computer 
can be detected early when it is connected to a network. 

20 According to a sixth aspect of the present invention, there 

is provided a detection server for 

omission-in-software-property-management using a network for 
detecting a computer omitted from a software-property management 
which manages, for each computer, basic information thereof and 

25 installed software, and fix-patch application status , comprising: 
a network-connection management section for creating a 
network-connected-computer list which holds, for all computers 
connected to a given network, information for identifying each 
computer; a software-property management section for creating a 

30 software-property management list which holds, for all computers 
to be managed by the software-property management, information 
for identifying each computer; and an 
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omission-iri-sofetware-property-management detection section 
which uses the network-connected-computer list input from the 
network-connection management section and the software-property 
management list input from the software-property management 
5 section as a basis to extract a computer that is present in the 
network-connected-computer list and absent in the 
software-property management list, and to create a list of 
computer omitted in software-property management. 
Such a configuration of an 

10 omission-in-software-property-management detection server using 
a network can allow one server to create the 
omission-in-software-property-management list . 

Specifically, as an additional function to the conventional 
software-property management system, the above-described 

15 configuration can be added to the server included in the 
conventional software-property management system, thereby 
allowing the server to create an omission-in-software-property 
management list according to the present invention. 

According to a seventh aspect of the present invention, in 

20 the detection server of the fifth aspect, the server uses the 
network-connected-computer list and the software-property 
management list as a basis to extract a computer that is present 
in the software-property management list and absent in the 
network-connected-computer list, and to create a list of computer 

2 5 in unused state. 

According to a eighth aspect of the present invention, in 
the detection server of the sixth aspect, 

omission-in-software-property-management detection section uses 
the network-connected-computer list and the software-property 
30 management list as a basis to extract a computer that is present 
in the software-property management list and absent in the 
network-connected-computer list, and to create a list of computer 



in unused 3tate. 

Such a configuration of an 
omission-in-software-property-management detection server using 
a network can determine a computer that was previously used but 
is not used at present. 

Specifically, a computer omitted in software-property 
management can be detected, as well as a list of software that 
is unused at present can be obtained. 

According to a ninth aspect of the present invention, in 
the detection server of any of the fifth to eighth aspects, the 
server sorts the network-connected-computer list and the 
software-property management list, and uses these sorted 
network-connected-computer list and software-property 
management list as a basis to create the list of a computer omitted 
in software-property management or the list of computer in unused 
state . 

Such a configuration of an 
omission-in-software-property-management detection server using 
a network can, for example, sort each of the 
network-connected-computer list and the software-property 
management list in ascending or descending order according to the 
network address or the like, and thereby creating the 
omission-in-software-property-management detection list by 
executing a process using a binary-search algorithm or the like 
instead of using a sequential-search algorithm 

Thus, the creation process of the 
omission- in-software-property-management list and the 
unused-computer list can be executed at a higher speed. 

According to a tenth aspect of the present invention, there 
is provided a detection program for 

omission-in-software-property-management using a network for 
detecting a computer omitted from a software-property management 
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which "manages , "for each computer, basic information thereof and 
installed software, and fix-patch application status, wherein an 
omission- in- software-property-management detection server is 
allowed to receive a network-connected-computer list which holds, 
5 for all computers connected to a given network, information for 
identifying each computer, from a network-connection-management 
server including the network-connected-computer list, receive a 
software-property management list which holds, for all computers 
to be managed by the software-property management, information 

10 for identifying each computer, from a software-property 

management server including the software-property management list, 
and use the network-connected-computer list and the 
software-property management list as a basis to extract a computer 
that is present in the network-connected-computer list and absent 

15 in the software-property management list, and to create a list 
of computer omitted in the software-property management. 

Such a configuration of an 
omission-in- software-property-management detection program 
using a network can allow the 

20 omission-in-software-property-management detection server to 

use a network-connected-computer list from a network-connection 
management server and a software-property management list from 
a software-property management server as a basis to easily detect 
a computer omitted in software-property management. 

25 Thus, in software-property management that manages OS, 

software version, and patch-application status or the like at the 
same time, a list including every computer connected to a network 
according to the present invention can be created to prevent the 
omission in management. 

30 According to a eleventh aspect of the present invention, 

there is provided a detection program for 

omission-in-software-property-management using a network for 
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detecting a* computer omitted from a software-property management 
which manages, for each computer, basic information thereof and 
installed software, and fix-patch application status, wherein an 
omission- in-software-property-management detection server is 
allowed to create a network-connected-computer list which holds, 
for all computers connected to a given network, information for 
identifying each computer, create a software-property management 
list which holds, for all computers to be managed by the 
software-property management, information for identifying each 
computer, and use the network-connected-computer list and the 
software-property management list as a basis to extract a computer 
that is present in the network-connected-computer list and absent 
in the software-property management list, and to create a list 
of computer omitted in the software-property management. 

Such a configuration of an 
omission- in- software-property-management detection program 
using a network can allow one server to create the 
omission-in-software-property-management list . 

Thus, this can prevent omission in management in the 
software-property management that manages OS, software version, 
and patch-application status or the like at the same time. 

According to a twelfth aspect of the present invention, in 
the detection program using of the tenth or eleventh aspects, an 
omission- in- software-property-management detection server is 
allowed to use the network-connected-computer list and the 
software-property management list as a basis to extract a computer 
that is present in the software-property management list and 
absent in the network-connected-computer list, and to create a 
list of computer in unused state. 

Such a configuration of an 
omission- in-software-property-management detection program 
using a network can allow the 
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omission- ill- sot tware-property-management detection server to 
determine a computer that was previously used but is not used at 
present . 

This can also allow the 
5 omission-in-software-property-management detection server to 
output a list of software that is unused at present. 

According to a thirteenth aspect of the present invention, 
in the detection program of any of the tenth to twelfth aspects, 
an omission-in-software-property-management detection server is 

10 allowed to sort the network-connected-computer list and the 
software-property management list, and use these sorted 
network-connected-computer list and software-property 
management list as a basis to create the list of a computer omitted 
in software-property management or the list of computer in unused 

15 state. 

Such a configuration of an 
omission- in-software-property-management detection program 
using a network can allow the 

omission- in-software-property-management detection server to 
20 sort the network-connected-computer list and the 

software-property management list, and subsequently to create the 
omission-in-software-property-management detection list or the 
unused-computer list . 

Thus , the creation process can be executed at a higher speed . 

25 

BRIEF DESCRIPTION OF THE DRAWINGS 
In the accompanying drawings : 

Fig. 1 shows a block diagram of a configuration of an 
omission-in-software-property-management detection system using 
30 a network in the first embodiment of the present invention; 

Fig. 2 shows a network-connected-computer list and a 
software-property-management list in the 
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omission-iri-so'f tware-property-management detection system using 
a network in the first embodiment of the present invention; 

Fig. 3 shows a flowchart of a processing procedure in the 
omission-in-software-property-management detection system using 
5 a network in the first embodiment of the present invention; 
Fig. 4 shows concrete examples of a 
network-connected-computer list and a software-property 
management list in the omission-in-software-property-management 
detection system using a network in the first embodiment of the 
10 present invention. 

Fig. 5 shows a concrete example of an 
omission- in- software-property-management list in the 
omission-in-software-property-management detection system using 
a network in the first embodiment of the present invention; 
15 Fig. 6 shows a flowchart of a processing procedure in the 

omission-in-software-property-management detection system using 
a network in the second embodiment of the present invention; 

Fig. 7 shows concrete examples of a 
network-connected-computer list and a software-property 
2 0 management list in the omission-in-software-property-management 
detection system using a network in the second embodiment of the 
present invention ; 

Fig. 8 shows concrete examples of an 
omission-in-software-property-management detection list and an 
25 unused-computer list in the 

omission-in-software-property-management detection system using 
a network in the second embodiment of the present invention; 

Fig. 9 shows a block diagram of a configuration of an 
omission-in-software-property-management detection server using 
30 a network in the third embodiment of the present invention; and 
Fig. 10 shows a block diagram of a configuration of an 
omission-in-software-property-management detection server using 
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a network in the fourth embodiment of the present invention. 

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS 
The present invention will now be described below referring 
5 to the accompanying drawings . 
(First embodiment) 

A first embodiment of the present invention will first be 
described below referring to Figs. 1 and 2. Fig. 1 shows a block 
diagram of a configuration of an 
10 omission-in-software-property-management detection system using 
a network in the first embodiment of the present invention. Fig. 
2 shows a network-connected-computer list and a 
software-property-management list in the system. 

As shown in Fig. 1, an 
15 omission-in-software-property-management detection system using 
a network comprises a network-connection management server 10, 
a software-property management server 20, and an 
omission-in-software-property-management detection server 30 . 

In this embodiment, these servers are connected using 
20 Ethernet (registered trademark) as a physical network, and TCP/IP 
(Transmission Control Protocol/Internet Protocol) as a network 
protocol, but the present invention is not limited to them. 

The network-connection management server 10 is a server for 
managing a computer connected to a network and holds a 
25 network-connected-computer list 100. 

This network-connected-computer list 100 may be created 
using any means that can list every computer connected to a 
network . 

For example, when Ethernet (registered trademark) is used 
30 as a physical network and TCP/IP is used as a network protocol, 
a computer can be connected to a network for communication using 
a mechanism that broadcasts an ARP (Address Resolution Protocol) 
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to identify 1 a MAC (Media Access Control) address of the connected 
computer. 

Specifically, a packet-monitoring device is provided in 
each broadcast domain to monitor the ARP packet, and the MAC 
5 address and the IP address included in the ARP packet are used 
to detect and list the computer. 

Then, a means can be used that asks DNS (Domain Name System) 
with the detected IP address to identify a computer name and 
creates the network-connected-computer list 100 which includes 
10 every computer connected to a network. 

The software-property management server 2 0 is a server for 
managing use status of software property purchased and used in 
the organization and holds a software-property management list 
200. 

15 This software-property management list 200 may be created 

using any means that can list software-property management 
information such as a kind and name of an OS (Operating System) 
and application installed in each computer, and fix-patch 
application status, and computer basic information such as a MAC 

20 address, an IP address, and a computer name. 

For example, agent software is run on each computer that 
surveys software-property management information and computer 
basic information, and the survey results are sent to the 
software-property management server 20. 

25 A means can then be used that allows the software-property 

management server 20 to create the software-property management 
list 200 based on the information sent from each computer. 

The omission- in- software-property-management detection 
server 30 receives the network-connected-computer list 100 from 

30 the network-connection management server 10 and also receives the 
software-property management list 200 from the software-property 
management server 20. 
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The omission- in- software-property-management detection 
server 30 also compares the network-connected-computer list 100 
and the software-property management list 200 using as a key the 
MAC address used to identify a computer in communication over the 
5 Ethernet (registered trademark) and determines a computer omitted 
in the software-property-management list 200. 

This determination of the omitted computer will be described 
below with reference to Fig. 2. In Fig. 2, the 

network-connected-computer list 100 is created using a means for 

10 detecting every computer connected to a network, and has network 
addresses 111 to 11m and corresponding computer names 121 to 12m. 

The software-property management information list 200 
organizes and classifies computer basic information, installed 
OS , application software or the like , for each computer . A network 

15 address and a computer name are registered here as the computer 
basic information . 

The omitted computer is determined by comparing the network 
addresses 111 to 11m in the network-connected-computer list 100 
and the network addresses 211 to 21n in the software-property 

2 0 management information list 2 00 and by deciding that a computer 
with an address included in 111 to 11m but not in 211 to 21n is 
a computer omitted from the software-property management 
information. This method helps prevent omission in management 
of software property used in computers connected to a network and 

25 also helps prevent a situation with security concerns where a 
computer with unknown OS or application-patch application status 
is left connected to a network. 

Referring now to Fig. 3, a processing procedure in the 
omission-in- software-property-management detection server 30 

30 using a network in this embodiment will be described below. Fig. 
3 shows a flowchart of a processing procedure in the 
omission-in-software-property-management detection system using 
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a network i'n this embodiment. 

First, before the processing in the flowchart, the 
omission-in-software-property-management detection server 30 
receives the network-connected-computer list 100 from the 
5 network-connection management server 10 and also receives the 
software-property management list 200 from the software-property 
management server 20. 

Then , the omission-in-software-property-management 
detection server 30 will determine a computer omitted from the 
10 software-property management information based on these lists, 
as described below. Note that the 

omission-in-software-property-management detection server 30 
will be omitted in the description below, although it is the 
subject of the operations in the flowchart in Fig. 3. 

15 First, the computer MAC address information described at 

the head of the network-connected-computer list 100 is read out 
(step Al) . Operations in subsequent steps A2 to A6 show operations 
that decide whether the software-property management list 200 
includes the computer with this read out MAC address Hi, and if 

2 0 not, add the computer to the 

computer-omitted-in-sof tware-property-management list 300 . 

Specifically, the computer MAC address information 
described at the head of the software-property management list 
200 is read out (step A2) . 

2 5 Then, the MAC address read out in the step Al and the MAC 

address read out in the step A2 are compared (step A3) . If both 
addresses are the same, it is decided that the software-property 
management list 200 includes a computer corresponding to the MAC 
address Hi read out from the network-connected-computer list 100 , 

3 0 and then proceeding to step A7 . 

If the MAC addresses are different, it is decided whether 
the MAC address 21 j read out from the software-property management 
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list 200 of - the MAC addresses used in the comparison at step A3 
is the MAC address of the last computer in the software-property 
management list 200 (step A4) . 

If the MAC address 21j is not the MAC address of the last 
5 computer in the list, the MAC address of the next computer in the 
list 200 is read out (step A5) , and the processes from step A3 
are executed again. 

If the MAC address 21j is the MAC address of the last computer 
in the property management list 200, it is decided that the 
10 software-property management list 200 does not include a computer 
corresponding to the MAC address Hi read out from the 
network-connected-computer list 100, and then proceeding to step 
A6 . 

Here, information on a computer with the MAC address Hi 
15 is read out from the network-connected-computer list 100 and is 
added to the computer-omitted-in-sof tware-property-management 
list 300 (step A6) , and then proceeding to step A7 . 

There it is decided whether the MAC address Hi is the MAC 
address of the last computer in the network-connected-computer 
20 list 100 (step A7) . If the MAC address Hi is not the MAC address 
of the last computer in the list 100, the MAC address of the next 
computer in the list is read out (step A8) and the processes at 
steps A2 to A6 are repeated. 

If the MAC address Hi is the MAC address of the last computer 
25 in the list 100, the process is ended because it has been decided 
for every computer included in this network-connected-computer 
list 100 whether the software-property management 200 includes 
the computer. 

Referring now to Figs. 4 and 5, a processing procedure. in 
30 the omission-in-software-property-management detection system 
using a network in this embodiment will be described below with 
reference to concrete examples . 
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•Fig. '4 shows concrete examples of a 
network-connected-computer list and a software-property 
management list in the omission-in-software-property-management 
detection system using a network in this embodiment. Fig. 5 shows 
5 a concrete example of a list of computer omitted in 

software-property management in the system, more specifically an 
omission-in-software-property-management detection list . 

The above-described processing procedure shown in Fig. 3. 
executed using the network-connected-computer list 100 and the 
10 software-property management 200 shown in Fig. 4 will be 
specifically described below. 

First, at step Al , the MAC address "00: 00: 4c: 11: 11: 11" 
at the head of the network-connected-computer list 100 is read 
out . 

15 Then, at step A2 , the MAC address "00: 00: 4c: 55: 55: 55 M 

at the head of the software-property management list 200 is read 
out . 

Next, at step A3, the read out addresses are compared. The 
MAC addresses read out from each list are different in this case, 
20 and then proceeding to step A4 . 

At step A4 , it is decided whether the MAC address read out 
from the software-property management list 200 is the last one. 
In this case, the address is not the last one, and then proceeding 
to step A5 , where the next MAC address in the list, "00: 00: 4c: 
25 11: 11: 11" is read out, and then returning to step A3. 

At the next step A3, the MAC addresses are compared and are 
the same, and then proceeding to step A7 . 

At step A7 , it is decided whether the MAC address read out 
from the network-connected-computer list is the last one in the 
30 list 100. The address is not the last one in the list 100 in this 
case, and then proceeding to step A8 , where the next MAC address 
in the list 100, "00: 00: 4c: 22: 22: 22" is read out, and then 
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returning to step a2 . 

Further operations are the same as in the case where the 
MAC address read out from the network-connected-computer list 100 
is "00: 00: 4c: 11: 11: 11." 
5 A computer with the address "00: 00: 4c: 22: 22: 22" is not, 

however, registered in the software-property management list 200. 

Thus, when the MAC address "00: 00: 4c: 77: 77: 77 n of the 
last computer in the software-property management list 200 is 
processed, the processing proceeds from step A4 to step A6 , where, 
10 information on the computer with the MAX address "00: 00: 4c: 22: 
22: 22" is added to the omission-in-software-property-management 
list 300. 

Similarly, such of the computers registered in the 
network-connected-computer list as have the MAC addresses "00: 
15 00 : 4c: 55 : 55 : 55" and " "00 : 00 : 4c: 77 : 77 : 77" are also registered 
in the software-property management list 200. 

Thus, the operations for these computers are the same as 
for the computer with the MAC address "00: 00: 4c: 11: 11: 11." 

In addition, a computer with the MAC address "00: 00: 4c: 
20 bb: bb: bb" is not registered in the software-property management 
200. Thus, the operations for this computer is the same as for 
the computer with the MAC address "00: 00: 4c: 22: 22: 22." 

This computer with the MAC address "00: 00: 4c: bb : bb : bb" , 
however, corresponds to the last MAC address in the 
25 network-connected-computer list 100. Thus, the processing ends 
after the process at step A7 . 

The processing described above can create the 
omission-in-software-property-management list 300 shown in Fig. 
5. 

30 As described above, the 

omission-in-software-property-management detection system using 
a network in this embodiment can easily determine a computer 



- 22 - 



omitted from the software-property management. 

In addition, omission can be prevented in the 
software-property management information without significant 
modification of the conventional software-property management 
5 system. 

Consequently, a computer with unknown OS, software version, 
or patch-application status or the like can be detected, and a 
computer that does not have the latest patch-application status 
and may be a security hole can be prevented from being left 
10 connected to a network. 

Furthermore, the network-connected-computer list and the 
software-property management list can be regularly updated and 
compared in an appropriate period to detect early a computer out 
of the software-property management or an illegal computer, when 
15 it is connected to a network. 

(Second embodiment) 

A second embodiment of the present invention will now be 
described below referring to Figs. 3, and 6 to 8 . Fig. 6 shows 
a flowchart of a processing procedure in the 

20 omission-in-software-property-management detection system using 
a network in this embodiment. Fig. 7 shows concrete examples of 
a network-connected-computer list and a software-property 
management list in the system. Fig. 8 shows concrete examples 
of an omission-in-software-property-management detection list, 

25 and a list of computer that is in unused state, more specifically, 
an unused-computer list. 

This embodiment differs from the first embodiment in that 
a computer can be determined that was previously used but is not 
used at present. 

30 The operation procedure in the flowchart in Fig. 6 is 

obtained from a reverse relationship between the 
network-connected-computer list 100 and the software-property 
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management 'list 200 'in the flowchart in Fig. 3. 

The flowchart in Fig. 6 can detect a computer that is included 
in the software-property management list but not included in the 
network-connected-computer list and can decide that it is a 
5 computer that is already unused. 

Further , the omission-in-software-property-management 
detection server 30 can execute the flowchart processing in Fig. 
6 after completing the flowchart processing in Fig. 3 to create 
both the computer-omitted-in-sof tware-property-management list 
10 300 and the unused-computer list 400. 

That is, a computer omitted in software-property management 
can be detected as well as a list of software that is unused at 
present can be obtained, so that the software property can be 
easily managed more strictly. 
15 The operations in a continuous processing of the flowchart 

in Fig. 3 and the flowchart in Fig. 6 using the 
network-connected-computer list 100 and the software-property 
management list 200 shown in Fig. 7 will now be specifically 
described below. 

20 The lists in Fig. 7 are obtained from the lists in Fig. 4 

by adding information on two computers not included in the 
network-connected-computer list 100 to the software-property 
management list 200. The network-connected-computer list 100 in 
Fig. 7 is the same as that in Fig. 4. 

25 In other words, the computers in the lists in Fig. 7 that 

are included in the network-connected-computer list 100 and not 
included in the software-property management list 200 are the same 
as those in the lists in Fig. 4. 

Therefore, the same computers are added to the 

30 computer-omitted-in-sof tware-property-management list 300 when 
the lists in Fig. 7 are used as those added when the lists in Fig. 
4 are used. Thus, the detailed description will be omitted of 
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the processing " operations for creating the 

omission-in-software-property-management list 300 according to 
the flowchart in Fig. 3. 

Next, the flowchart processing in Fig. 6, which is executed 
5 after the flowchart processing in Fig. 3, will be described below. 

First, the MAC address "00: 00: 4c: 55: 55: 55" at the head 
of the software-property management list 200 is read out (step 
Bl) . Then, the MAC address "00: 00: 4c: 11: 11: 11" at the head 
of the network-connected-computer list 100 is read out (step B2) . 
10 Next, the read out MAC addresses are compared (step B3) . 

The MAC addresses read out from each list are different in this 
case, and then proceeding to step B4 . 

There, it is decided whether the MAC address read from the 
network-connected-computer list 100 is the last one in the list 
15 100 (step B4) . The address is not the last one in the list in 
this case, and then the next MAC address in the list, "00: 00: 
4c: 22: 22: 22" is read out (step B5) , and then returning to step 
B3 . 

At the next step B3 , the MAC addresses are compared and are 
20 also different, and then the processing proceeds in order of step 
B4 and step B5 , where the next MAC address in the 
network-connected-computer list 100, "00: 00: 4c: 55: 55: 55" is 
read out, and then returning to step B3 . 

At the next step B3 , the MAC addresses are compared and are 
2 5 the same, and then proceeding to step B7 . 

There, it is decided whether the MAC address read out from 
the software-property management list 200 is the last one in the 
list 200 (step B7) . The address is not the last one in the list 
200 in this case, and then proceeding to step B8 . 
30 There, the next MAC address in the list, "00: 00: 4c: 33: 

33: 33" is read out (step B8) , and then returning to B2 . 

Further operations are the same as in the case where the 
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MAC address read out from the software-property management 200 

is "00: 00: 4c: 55: 55: 55." A computer with the address "00: 

00: 4c: 33: 33: 33" is not, however, registered in the 

network-connected-computer list 100 . 
5 Thus, when the MAC address read out from the 

network-connected-computer list 100 is "00: 00: 4c: bb : bb : bb" , 

it is decided at the step B4 that this address is the last MAC 

address in the network-connected-computer list 100, and then 

proceeding to step B6 , where information on a computer with the 
10 MAC address "00: 00: 4c: 33: 33: 33 " is added to the unused-computer 

list 400 (step B6) . 

Such of the computers registered in the software-property 

management list 200 as have the MAC addresses "00: 00: 4c: 11: 

11: 11", "00: 00: 4c: 77: 77: 77 n are also registered in the 
15 network-connected-computer list 100. Thus, the operations for 

these computers are the same as for the computer with the MAC 

address "00: 00: 4c: 55: 55: 55." 

In addition, a computer with the MAC address "00: 00: 00: 

4c: 88: 88: 88" is not registered in the 
20 network-connected-computer list 100. Thus, the operations for 

this computer is the same as for the computer with the MAC address 

"00: 00: 00: 4c: 33: 33: 33." 

Furthermore, the computer with the MAC address in the list 

200 of "00: 00: 4c: 77: 77: 77" corresponds to the last MAC address 
25 in the software-property management list 200. Thus, the 

processing ends after the process at step B7 . 

Fig. 8 shows the omission-in-software-property-management 

list 300 and the unused-computer list 400 thus created. 
As described above, the 
3 0 omission-in-software-property-management detection system using 

a network in this embodiment can create the 

omission-in-software-property-management list as well as the 
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unused-computer list, so that a computer that is already unused 
can be determined. 

That is, a computer omitted from the software-property 
management can be detected as well as a list of software that is 
5 unused at present can be obtained, so that the software property 
can be easily managed more strictly. 
(Third embodiment) 

A third embodiment of the present invention will now be 
described below referring to Fig. 9 . Fig. 9 shows a block diagram 
10 of a configuration of an 

omission-in-software-property-management detection server using 
a network in this embodiment. 

This embodiment differs from the first and second 
embodiments in that one server can create the 
15 omission-in-software-property-management list 300 and the 
unused-computer list 400. 

Specifically, as shown in Fig. 9, a 
property-integrated-management server 1000 integrates into one 
server the configuration comprising three separate servers, the 
20 network-connection management server 10, the software-property 
management server 20, and the 

omission-in-software-property-management detection server 30 in 
Fig. 1. 

In Fig. 9, a network-connection management section 1010 
25 realizes the function of the network-connection management server 
10 in Fig. 1, the software-property management section 1020 
realizes the function of the software-property management server 
20, and the omission-in-software-property-management detection 
section 1030 realizes the function of the 
30 omission-in-software-property-management detection server 30. 

Thus, the present invention can be practiced with a server 
provided for each function, or with each function realized by one 



serves. 

(Fourth embodiment) 

A fourth embodiment of the present invention will now be 
described below referring to Fig. 10. Fig. 10 shows a block 
diagram of a configuration of an 

omission-in-software-property-management detection server using 
a network in this embodiment. 

This embodiment differs from the third embodiment in that 
the omission-in-software-property-management list 300 or the 
unused-computer list 400 is created with each of the 
network-connected-computer list 100 and the software-property 
management list 200 used after being sorted. 

Specifically, as shown in Fig. 10, the 
property-integrated-management server 1000 comprises a 
list-preprocessing section 1040 added to the configuration in the 
third embodiment. 

This list-preprocessing section 1040 sorts each of the 
network-connected-computer list 100 and the software-property 
management list 200 in ascending or descending order according 
to the MAC address. Thus, the 

omission-in-software-property-management detection section 1030 
can execute, for example, a process using a binary-search 
algorithm, instead of a process using a sequential-search 
algorithm. 

Consequently, the creation process can be executed at a 
higher speed of the omission-in-software-property-management 
list 300 and the unused-computer list 400. 

As described above, the present invention can be practiced 
with any algorithm that can execute a list-comparison process 
using as a key the network address in Fig. 1. 

It should be understood that such a list preprocessing could 
also be executed in the first embodiment or in the second 
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embodiment : 

In this case, the list preprocessing can be executed on the 
network-connected-computer list 100 in the network-connection 
management server 10 and can also be executed on the 
5 software-property management list 200 in the software-property 
management server 20. 

The list preprocessing can also be executed on both the 
network-connected-computer list 100 and the software-property 
management list 200 in the 
10 omission-in-software-property-management detection server 30. 

An omission-in-software-property-management detection 
program using a network can execute the detection of the omission 
in the software-property management and the creation of the 
omission-in-software-property-management detection list or the 
15 like in the above embodiment. 

This omission-in-software-property-management detection 
program using a network sends a command to each component in the 
computer to allow the components to execute predetermined 
processes such as the detection process of the omission in the 
2 0 software-property management and the creation process of the 

omission-in-software-property-management detection list, or the 
like . 

Thus, these processes are realized such as by the 

omission-in-software-property-management detection server 30 
25 using a network in which the 

omission- in- software-property-management detection program 

using a network and the computer cooperate. 
Furthermore, the 

omission-in-software-property-management detection program 
30 using a network can be stored in a ROM or hard disk in the computer, 

as well as a computer-readable storage medium such as an external 

memory device and a portable storage medium. 
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•The External memory device refers to an expanded-memory 
device, which contains a storage medium such as a magnetic disk 
and externally connects to the 

omission-in-software-property-management detection server 30 
5 using a network or the like. On the other hand, the portable 
storage medium refers to a storage medium that can be mounted on 
a storage-medium driving device (drive device) and is portable, 
including a CD-ROM, flexible disk, memory card, and magnetic 
optical disk or the like. 

10 The program stored on the storage medium is then loaded into 

a RAM and executed by the CPU. This execution can realize the 
means of the omission-in-software-property-management detection 
server 30 using a network in this embodiment described above. 
In addition, the computer can load the 

15 omission-in-software-property-management detection program 

using a network by downloading into its own RAM or external memory 
device via a communication line the 

omission-in-software-property-management detection program 
using a network held by another computer. 
20 This downloaded omission-in-software-property-management 

detection program using a network is also executed by the CPU and 
can realize processes such as the detection process of the omission 
in the software-property management and the creation process of 
the omission-in-software-property-management detection list in 

2 5 this embodiment. 

Note that the present invention is not limited to the 
embodiments described herein and various modifications can be made 
within the scope of the invention. 

Appropriate design changes can be made, for example, the 

3 0 network-connected-computer list 100 and the 

software-property-management list 200 can be compared using as 
a key a network address other than the MAC address or other key 
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that can uniquely identify the computer. 



